DescriptionThe Information Security Architect is responsible for designing, implementing, and maintaining robust security measures to protect an organization’s systems, networks, and applications. This role focuses on ensuring the organization’s digital assets remain secure and compliant. Makes decisions on complex or ambiguous IT architecture issues by coordinating with users to determine requirements and ensuring system improvements are successfully implemented/monitored. Provides consulting and compliance guidance to project teams and IT security regarding policies, industry regulations and best practices. Determines security requirements by evaluating business strategies/requirements. Assists in the development of estimates for security projects and contributes to defining timetables and project plans.
Job Responsibilities:
- Designs and develops comprehensive security architectures, frameworks, and solutions tailored to the organization’s needs.
- Assess security risks, identify vulnerabilities, and define security requirements. Establishes a robust security posture that addresses current and future threats.
- Conducts risk assessments to identify potential security threats, vulnerabilities, and weaknesses. Prioritize risks based on severity and likelihood. Develops risk mitigation strategies and controls.
- Works with Information Assurance team to create, implement, and enforce security policies, standards, and procedures.
- Ensures compliance with industry regulations, legal requirements, and best practices.
- Establishes guidelines for access control, data protection, encryption, and authentication.
- Evaluates security technologies, tools, and solutions. Researches emerging threats and trends.
- Recommends innovative security solutions to enhance the organization’s security posture.
- Works with Incident Response team to detect, analyze, and respond to security incidents and breaches.
- Participates in the development of incident response plans and protocols.
- Minimizes the impact of security incidents and restore normal operations promptly.
- Aligns security solutions with organizational goals and objectives. Regularly assesses and test security measures.
Requirements:
- Education: Bachelor’s degree in relevant field (or 4 years of additional experience in lieu of degree)
- Experience: 5 years of experience in IT security architecture or security management.
- Certification: At least one security certification required upon start: Certified Information Systems Security Professional, CISM, HCISSP, or comparable certification